$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/68EAE318D09411EA9D19403FC4F9AE02.roa File: 68EAE318D09411EA9D19403FC4F9AE02.roa (raw, json) Hash identifier: 0JhS68ZbMDxqrN7xqgQ1rb34ESFxqmGwfdPUG+zU2nY= Subject key identifier: 27:37:4A:A8:A9:9C:10:C4:38:CD:F9:EE:92:5C:EC:97:FD:AB:8E:17 Certificate issuer: /CN=A91CCDD3/serialNumber=C2E0B583DA40DB6DD833051C0524599E1A5902C6 Certificate serial: 07EC Authority key identifier: C2:E0:B5:83:DA:40:DB:6D:D8:33:05:1C:05:24:59:9E:1A:59:02:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wuC1g9pA223YMwUcBSRZnhpZAsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/68EAE318D09411EA9D19403FC4F9AE02.roa Signing time: Wed 20 Nov 2024 20:49:34 +0000 ROA not before: Wed 20 Nov 2024 20:49:34 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140947 IP address blocks: 103.153.182.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/wuC1g9pA223YMwUcBSRZnhpZAsY.crl rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/wuC1g9pA223YMwUcBSRZnhpZAsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wuC1g9pA223YMwUcBSRZnhpZAsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2028 (0x7ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDD3/serialNumber=C2E0B583DA40DB6DD833051C0524599E1A5902C6 Validity Not Before: Nov 20 20:49:34 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=673e4b5e-c09e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:91:b1:34:f9:f3:fe:bf:21:8c:59:3e:4e:32: b4:f1:45:a5:9f:b0:bb:e9:cc:7e:60:2f:ba:b2:0d: a7:2d:01:bb:b9:be:6d:a4:91:d9:73:23:90:8f:d1: ee:ed:25:c0:d5:11:91:26:53:ca:b0:7e:ac:03:81: 78:d5:34:6c:44:39:72:c7:89:96:e7:f9:41:65:db: 58:ca:e8:30:0f:ff:47:72:80:d8:ad:6b:1c:69:b5: 01:8f:27:0a:c5:c1:c5:c7:0a:82:e4:23:b3:51:9d: f1:01:38:37:64:37:0a:7c:87:9e:3f:c4:47:9e:0d: 59:aa:dc:34:f9:4a:a0:34:b1:8e:11:7a:54:85:c1: 2b:74:36:15:b7:9b:52:2a:88:ce:b2:da:fc:8e:b8: bf:42:e5:6d:66:46:62:20:b6:e7:76:13:f3:f3:a9: 31:54:49:92:5a:c8:bf:f6:68:b6:5a:8d:36:6a:07: 71:46:3a:48:24:b1:69:09:c5:87:c0:f9:22:74:de: 78:57:13:02:2b:03:85:69:8a:cc:1d:f3:54:04:65: b8:23:02:ae:42:c2:db:29:99:35:7b:3d:96:1d:7d: 7c:e0:ad:3a:96:2b:32:08:68:75:07:20:55:62:49: 09:99:34:5a:d1:a7:c3:34:62:8f:fb:5b:40:08:b4: cd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:37:4A:A8:A9:9C:10:C4:38:CD:F9:EE:92:5C:EC:97:FD:AB:8E:17 X509v3 Authority Key Identifier: keyid:C2:E0:B5:83:DA:40:DB:6D:D8:33:05:1C:05:24:59:9E:1A:59:02:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/wuC1g9pA223YMwUcBSRZnhpZAsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wuC1g9pA223YMwUcBSRZnhpZAsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/68EAE318D09411EA9D19403FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.182.0/23 Signature Algorithm: sha256WithRSAEncryption 99:1c:fd:72:1b:ec:7f:59:ed:1b:b2:80:f3:ba:91:b0:01:ad: fe:5d:9b:61:a3:ef:a5:40:0e:6c:1b:78:d0:2f:57:c6:fd:26: 98:96:94:90:6d:9a:26:0d:5e:6f:5a:53:e5:04:73:61:0b:b1: 24:11:43:09:f8:f3:37:ca:ad:51:a8:37:3a:1c:86:b1:87:0a: 9f:9a:ab:a3:5b:53:e8:f3:70:3a:4e:04:37:22:f6:99:03:23: 98:6a:71:c3:d5:04:2b:2e:ba:3d:aa:74:47:44:50:9c:d1:11: a5:9b:a8:58:67:96:44:1a:0d:2b:08:c5:14:28:fe:ed:94:69: 60:29:7e:5c:6e:0e:62:8d:1d:4b:71:fa:ae:12:83:bb:f5:de: 71:85:5d:62:38:29:d6:df:98:80:a1:36:1d:c1:19:87:5a:9f: 1f:ce:ed:74:68:f9:47:2c:67:ab:a6:8e:c5:b8:83:40:03:ec: 8c:57:8b:c5:cf:53:4b:9d:2c:b8:b0:cf:75:38:e3:b7:fd:e6: 70:7a:fc:03:24:5d:23:69:f9:24:f1:ff:65:46:52:76:00:a6: 47:b8:54:36:33:3d:50:bc:1d:55:93:d0:c2:80:f4:fe:dd:3d: be:70:36:1f:1f:44:d4:9e:62:07:c5:8e:c7:20:d7:8e:f8:ca: 4f:62:81:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NERDMxMTAvBgNVBAUTKEMyRTBCNTgzREE0MERCNkREODMzMDUxQzA1MjQ1OTlF MUE1OTAyQzYwHhcNMjQxMTIwMjA0OTM0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlNGI1ZS1jMDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pGxNPnz/r8hjFk+TjK08UWln7C76cx+YC+6sg2nLQG7ub5tpJHZcyOQj9Hu 7SXA1RGRJlPKsH6sA4F41TRsRDlyx4mW5/lBZdtYyugwD/9HcoDYrWscabUBjycK xcHFxwqC5COzUZ3xATg3ZDcKfIeeP8RHng1Zqtw0+UqgNLGOEXpUhcErdDYVt5tS KojOstr8jri/QuVtZkZiILbndhPz86kxVEmSWsi/9mi2Wo02agdxRjpIJLFpCcWH wPkidN54VxMCKwOFaYrMHfNUBGW4IwKuQsLbKZk1ez2WHX184K06lisyCGh1ByBV YkkJmTRa0afDNGKP+1tACLTNBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCc3Sqip nBDEOM357pJc7Jf9q44XMB8GA1UdIwQYMBaAFMLgtYPaQNtt2DMFHAUkWZ4aWQLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0REMy8wRDcxNTAzMkQw OTIxMUVBQTU3MTJBM0NDNEY5QUUwMi93dUMxZzlwQTIyM1lNd1VjQlNSWm5ocFpB c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d1QzFnOXBBMjIzWU13VWNCU1JabmhwWkFzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NERDMvMEQ3MTUwMzJEMDkyMTFFQUE1NzEyQTNDQzRGOUFFMDIvNjhFQUUzMThE MDk0MTFFQTlEMTk0MDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmbYwDQYJKoZIhvcNAQELBQADggEBAJkc/XIb7H9Z7Ruy gPO6kbABrf5dm2Gj76VADmwbeNAvV8b9JpiWlJBtmiYNXm9aU+UEc2ELsSQRQwn4 8zfKrVGoNzochrGHCp+aq6NbU+jzcDpOBDci9pkDI5hqccPVBCsuuj2qdEdEUJzR EaWbqFhnlkQaDSsIxRQo/u2UaWApflxuDmKNHUtx+q4Sg7v13nGFXWI4KdbfmICh Nh3BGYdanx/O7XRo+UcsZ6umjsW4g0AD7IxXi8XPU0udLLiwz3U447f95nB6/AMk XSNp+STx/2VGUnYApke4VDYzPVC8HVWT0MKA9P7dPb5wNh8fRNSeYgfFjscg1474 yk9igf0= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:09 2024 by rpki-client on console-ams.rpki-client.org